VYPR

Moonlight

by Mono

Source repositories

CVEs (4)

  • CVE-2011-0992Apr 13, 2011
    risk 0.00cvss epss 0.03

    Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service (plugin crash) or obtain sensitive information via vectors related to member data in a resurrected MonoThread instance.

  • CVE-2011-0991Apr 13, 2011
    risk 0.00cvss epss 0.03

    Use-after-free vulnerability in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to finalizing and then resurrecting a DynamicMethod instance.

  • CVE-2011-0989Apr 13, 2011
    risk 0.00cvss epss 0.03

    The RuntimeHelpers.InitializeArray method in metadata/icall.c in Mono, when Moonlight 2.x before 2.4.1 or 3.x before 3.99.3 is used, does not properly restrict data types, which allows remote attackers to modify internal read-only data structures, and cause a denial of service…

  • CVE-2010-4254Dec 6, 2010
    risk 0.00cvss epss 0.14

    Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is used, does not properly validate arguments to generic methods, which allows remote attackers to bypass generic constraints, and possibly execute arbitrary code, via a crafted method call.